AI-secure/AgentPoison

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/AI-secure/AgentPoison)

AI-secure / AgentPoison

[NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"

☆199

Alternatives and similar repositories for AgentPoison

Users that are interested in AgentPoison are comparing it to the libraries listed below

Sorting:

AI-secure / RedCode
View on GitHub
[NeurIPS'24] RedCode: Risky Code Execution and Generation Benchmark for Code Agents
☆66Nov 14, 2025Updated 3 months ago
sleeepeer / PoisonedRAG
View on GitHub
[USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Models
☆234Jan 27, 2026Updated last month
lancopku / agent-backdoor-attacks
View on GitHub
Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]
☆109Sep 27, 2024Updated last year
agiresearch / ASB
View on GitHub
Agent Security Bench (ASB)
☆186Oct 27, 2025Updated 4 months ago
OSU-NLP-Group / EIA_against_webagent
View on GitHub
☆37Oct 2, 2024Updated last year
liu00222 / Open-Prompt-Injection
View on GitHub
This repository provides a benchmark for prompt injection attacks and defenses in LLMs
☆395Oct 29, 2025Updated 4 months ago
guardagent / code
View on GitHub
☆34Dec 9, 2025Updated 2 months ago
ethz-spylab / agentdojo
View on GitHub
A Dynamic Environment to Evaluate Attacks and Defenses for LLM Agents.
☆443Feb 3, 2026Updated 3 weeks ago
chanchimin / AgentMonitor
View on GitHub
Codes for our paper "AgentMonitor: A Plug-and-Play Framework for Predictive and Secure Multi-Agent Systems"
☆13Dec 13, 2024Updated last year
AAAAAAsuka / llm_defends
View on GitHub
code of paper "Defending Against Alignment-Breaking Attacks via Robustly Aligned LLM"
☆14Nov 17, 2023Updated 2 years ago
OSU-NLP-Group / AgentAttack
View on GitHub
☆23Oct 25, 2024Updated last year
OSU-NLP-Group / AmpleGCG
View on GitHub
AmpleGCG: Learning a Universal and Transferable Generator of Adversarial Attacks on Both Open and Closed LLM
☆83Nov 3, 2024Updated last year
gautierdag / plancraft
View on GitHub
Plancraft is a minecraft environment and agent suite to test planning capabilities in LLMs
☆26Nov 7, 2025Updated 3 months ago
AI-secure / PolyGuard
View on GitHub
☆17Jun 18, 2025Updated 8 months ago
stellalisy / PrefPalette
View on GitHub
☆21Jul 21, 2025Updated 7 months ago
pasquini-dario / LLM_NeuralExec
View on GitHub
Code to generate NeuralExecs (prompt injection for LLMs)
☆27Oct 5, 2025Updated 4 months ago
shuaizhao95 / ICLAttack
View on GitHub
ICL backdoor attack
☆17Nov 4, 2024Updated last year
bboylyg / BackdoorLLM
View on GitHub
[NeurIPS 2025] BackdoorLLM: A Comprehensive Benchmark for Backdoor Attacks and Defenses on Large Language Models
☆276Feb 2, 2026Updated 3 weeks ago
sail-sg / Agent-Smith
View on GitHub
[ICML 2024] Agent Smith: A Single Image Can Jailbreak One Million Multimodal LLM Agents Exponentially Fast
☆118Mar 26, 2024Updated last year
tianyi-lab / R2-T2
View on GitHub
[ICML 2025] Code for "R2-T2: Re-Routing in Test-Time for Multimodal Mixture-of-Experts"
☆19Mar 10, 2025Updated 11 months ago
akumar2709 / OVERTHINK_public
View on GitHub
☆47Updated this week
TangciuYueng / AMemGuard
View on GitHub
☆38Oct 12, 2025Updated 4 months ago
AI-secure / UDora
View on GitHub
[ICML 2025] UDora: A Unified Red Teaming Framework against LLM Agents
☆32Jun 24, 2025Updated 8 months ago
OSU-NLP-Group / AgentSafety
View on GitHub
☆175Oct 31, 2025Updated 4 months ago
PurduePAML / K-ARM_Backdoor_Optimization
View on GitHub
☆18Jun 15, 2021Updated 4 years ago
CryptoAILab / Awesome-LM-SSP
View on GitHub
A reading list for large models safety, security, and privacy (including Awesome LLM Security, Safety, etc.).
☆1,865Jan 24, 2026Updated last month
DPamK / BadAgent
View on GitHub
☆28Feb 27, 2025Updated last year
weizeming / momentum-attack-llm
View on GitHub
☆23Jan 17, 2025Updated last year
wshi83 / EhrAgent
View on GitHub
[EMNLP'24] EHRAgent: Code Empowers Large Language Models for Complex Tabular Reasoning on Electronic Health Records
☆124Dec 26, 2024Updated last year
datasec-lab / CodeBreaker
View on GitHub
[USENIX Security '24] An LLM-Assisted Easy-to-Trigger Backdoor Attack on Code Completion Models: Injecting Disguised Vulnerabilities agai…
☆56Mar 22, 2025Updated 11 months ago
yunqing-me / AttackVLM
View on GitHub
[NeurIPS-2023] Annual Conference on Neural Information Processing Systems
☆227Dec 22, 2024Updated last year
gerdm / martingale-posterior-neural-networks
View on GitHub
Martingale posterior neural networks for fast sequential decision making @ Neurips 2025
☆23Nov 13, 2025Updated 3 months ago
SaFo-Lab / AutoDAN-Turbo
View on GitHub
[ICLR 2025 Spotlight] The official implementation of our ICLR2025 paper "AutoDAN-Turbo: A Lifelong Agent for Strategy Self-Exploration to…
☆347Oct 8, 2025Updated 4 months ago
SproutNan / AI-Safety_Benchmark
View on GitHub
The official repository for guided jailbreak benchmark
☆28Jul 28, 2025Updated 7 months ago
TLMichael / Delusive-Adversary
View on GitHub
[NeurIPS 2021] Better Safe Than Sorry: Preventing Delusive Adversaries with Adversarial Training
☆32Jan 9, 2022Updated 4 years ago
PanasonicConnect / rap
View on GitHub
RAP: Retrieval-Augmented Planning with Contextual Memory for Multimodal LLM Agents
☆24Aug 23, 2024Updated last year
dongyp13 / memorization-AT
View on GitHub
☆20Mar 14, 2022Updated 3 years ago
SheltonLiu-N / AutoDAN
View on GitHub
[ICLR 2024] The official implementation of our ICLR2024 paper "AutoDAN: Generating Stealthy Jailbreak Prompts on Aligned Large Language M…
☆430Jan 22, 2025Updated last year
sherdencooper / GPTFuzz
View on GitHub
Official repo for GPTFUZZER : Red Teaming Large Language Models with Auto-Generated Jailbreak Prompts
☆568Updated this week